On Sat, Dec 14, 2024 at 09:50:23PM -0500, Roberto C. Sánchez wrote: > Greetings pgsql devs, > > I would appreciate a review of my strategy for backporting the commits > related to CVE-2024-10978. (I am working with versions 11, 9.6, and 9.4, > for some older Debian releases.) > > My conclusion is that of the two commits associated with CVE-2024-10978, > both are required in 11 and 9.6, but only one is required in 9.4. > I wonder if someone might be able to look at my original message and help validate my analysis.
Regards, -Roberto -- Roberto C. Sánchez
